Exploiting Hot Spots in Heuristic Safety Analysis of Dynamic Access Control Models

Marius Schlegel, Winfried Kühnhauser

Abstract

Model-based security engineering approaches frequently suffer from computational complexity of model analysis. As a consequence, a considerable amount of human expertise is involved in the analysis process, rendering model analysis an expensive approach applied mostly to sophisticated systems with challenging security requirements. This paper discusses algorithmic foundations for an automated safety analysis of large access control models. The computational complexity is tackled by a heuristic-based approach, rendering the analysis algorithm scalable to large real-world access control systems.

Download


Paper Citation